Good Grants has a number of webhooks which can be used to trigger actions between Good Grants and third-party applications. Webhooks extend the functionality of your program so that you can create automations with other software tools. For example, if you want to create an invoice in your billing system when an application is successful then you can use the Allocation created webhook. You can also add users to an external CRM (Customer Relationship Management) the moment new users register with Good Grants by using the User created webhook.
Create a webhook
In Good Grants navigate to Settings > Developers > Webhooks
Click New webhook
Type in a Name
Paste in the Webhook URL
Enter a new or use the auto-generated Signing key (see below for more information about signing keys)
Select one of more of the Event subscriptions
Specify a notification email address. This is the email address you want error messages to be sent to.
Testing the webhook
We're going to demonstrate how to test webhooks using webhook.site but you can also test with an automation tool like Zapier or Integromat.
1. Go to webhook.site and copy Your unique URL and paste it into the Webhook URL field in Good Grants.
2. Give the webhook a name and select an event subscription. For the purposes of this test we're using Application submitted.
3. Submit an application in Good Grants. You should see the request appear immediately on webhook.site.
You can then programmatically do whatever you want with this information such as add it to a spreadsheet or send an email or add it to your CRM.
What is the signing key?
The signing key is a security feature which you can use to verify the information is coming from Good Grants. You don't have to verify the key but it's an added security measure which will prevent your integration from accepting information from potentially malicious third parties.
It uses a hash-based message authentication (HMAC) system with an sha256 algorithm. This means the information coming from Good Grants will be encrypted using your signing key. You can test it using this free online HMAC generator/testing tool.
Verify the signing key
1. Copy the content you received at webhook.site being sure to select only the raw content by deselecting the checkboxes next to Format JSON and Word-Wrap.
2. Paste the content into string field on the HMCA generator site.
3. Paste in your secret key from the webhooks page in Good Grants.
4. Select SHA256 from the message digest algorithm.
5. Then click Compute HMAC. The value you see should match exactly the value for the signature on the webhook.site.